Zoho Corp ManageEngine ServiceDesk Plus 14.0 14006

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:14.0:14006:*:*:*:*:*:*

part: a version: 14.0 update: 14006

VendorZohocorp (4f1ab088-ab0e-54ac-b0dc-2304879a7502)
ProductManageengine Servicedesk Plus (25373568-3a9b-52b0-9856-05e6cf15479d)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-23078 vulnerable 2026-06-03 14:49:20.892540 Details available
Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via the comment field when changing the credentials in the Assets.
Published: 2023-02-01T00:00:00.000Z
Updated: 2025-03-27T14:19:08.435Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-23074 vulnerable 2026-06-03 14:49:20.847830 Details available
Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via embedding videos in the language component.
Published: 2023-02-01T00:00:00.000Z
Updated: 2025-03-27T14:27:27.473Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-23073 vulnerable 2026-06-03 14:49:20.847126 Details available
Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via PO in the purchase component.
Published: 2023-02-01T00:00:00.000Z
Updated: 2025-03-27T14:29:08.008Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.